← Back to CVEs
CVE-2023-48849
CRITICAL9.8
Description
Ruijie EG Series Routers version EG_3.0(1)B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering.
CVE Details
CVSS v3.1 Score9.8
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published12/6/2023
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
ruijie:rg-eg1000cruijie:rg-eg1000c_firmwareruijie:rg-eg1000eruijie:rg-eg1000e_firmwareruijie:rg-eg105gruijie:rg-eg105g-eruijie:rg-eg105g-e_firmwareruijie:rg-eg105g-pruijie:rg-eg105g-p_firmwareruijie:rg-eg105g-peruijie:rg-eg105g-pe_firmwareruijie:rg-eg105g_firmwareruijie:rg-eg105g_v2ruijie:rg-eg105g_v2_firmwareruijie:rg-eg105gw-xruijie:rg-eg105gw-x_firmwareruijie:rg-eg105gw\(t\)ruijie:rg-eg105gw\(t\)_firmwareruijie:rg-eg2000ceruijie:rg-eg2000ce_firmwareruijie:rg-eg209gsruijie:rg-eg209gs_firmwareruijie:rg-eg2100-pruijie:rg-eg2100-p_firmwareruijie:rg-eg210g-eruijie:rg-eg210g-e_firmwareruijie:rg-eg210g-pruijie:rg-eg210g-p_firmwareruijie:rg-eg210g-peruijie:rg-eg210g-pe_firmwareruijie:rg-eg3000euruijie:rg-eg3000eu_firmwareruijie:rg-eg3000xeruijie:rg-eg3000xe_firmwareruijie:rg-eg305gh-p-eruijie:rg-eg305gh-p-e_firmwareruijie:rg-eg310gh-eruijie:rg-eg310gh-e_firmwareruijie:rg-eg3230ruijie:rg-eg3230_firmwareruijie:rg-eg3250ruijie:rg-eg3250_firmware
References
https://github.com/delsploit/CVE-2023-48849(cve@mitre.org)
https://github.com/delsploit/CVE-2023-48849(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.